9
CVE-2025-47372 - Buffer Copy Without Checking Size of Input in Boot
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
7.8
CVE-2025-47350 - Use After Free in DSP Service
Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application.
6.5
CVE-2025-47325 - Untrusted Pointer Dereference in TZ Firmware
Information disclosure while processing system calls with invalid parameters.
7.8
CVE-2025-47323 - Integer Overflow or Wraparound in Audio
Memory corruption while routing GPR packets between user and root when handling large data packet.
7.8
CVE-2025-47322 - Use After Free in Automotive Linux OS
Memory corruption while handling IOCTL calls to set mode.
7.8
CVE-2025-47321 - Buffer Copy Without Checking Size of Input in Core Services
Memory corruption while copying packets received from unix clients.
7.8
CVE-2025-47320 - Out-of-bounds Write in Audio
Memory corruption while processing MFC channel configuration during music playback.
6.7
CVE-2025-47319 - Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS
Information disclosure while exposing internal TA-to-TA communication APIs to HLOS
7.8
CVE-2025-27063 - Use After Free in Video
Memory corruption during video playback when video session open fails with time out error.
3.2
CVE-2025-68462 -
Freedombox before 25.17.1 does not set proper permissions for the backups-data directory, allowing the reading of dump files of databases.